102年5月15日第168次行政會議通過

Approved in the 168th administrative meeting on May 15, 2013

一、國立成功大學（以下簡稱本校）為統籌個人資料保護作業規劃事宜，以落實個人資料之保護及管理，特設本校個人資料保護管理執行小組（以下簡稱本小組），並訂定本要點。

1.     For the sake of centralizing the planning of protection for personal information in order to consolidate the protection and management of personal data, the National Cheng Kung University (hereinafter referred to as the “University”) particularly establishes the NCKU Personal Information Protection and Management Task Force (hereinafter referred to as the “Task Force”) and also these Directions.

二、本小組之任務如下：

(一) 本校個人資料保護政策之研議。

(二) 本校個人資料管理制度之推展。

(三) 本校個人資料隱私風險之評估及管理。

(四) 本校各單位個人資料保護意識之提升及教育訓練計畫之研議。

(五) 本校個人資料管理制度適法性與合宜性之檢視、審議及評估。

(六) 本校重大個人資料安全事件之應變、處理與協調。

(七) 其他本校個人資料保護、管理之規劃及執行事項。

2.     Tasks of the Task Force are as follows:

(1)   Deliberating personal information protection policies of the University

(2)   Promoting the personal information management system of the University

(3)   Evaluating and managing the personal information privacy risks of the University

(4)   Enhancing the awareness of personal information protection in the respective units of the University and deliberating educational training programs

(5)   Examining, reviewing, and evaluating the legitimacy and appropriateness of the personal information management system of the University

(6)   Responding to, dealing with, and coordinating major personal information safety events of the University

(7)   Planning and implementation of other matters related to personal information protection and management of the University

三、本小組由下列人員組成：

(一) 召集人：由本校資訊安全長（副校長）擔任。

(二) 副召集人：由計算機與網路中心主任擔任。

(三) 執行秘書：由計算機與網路中心具資訊安全專長人員一人擔任，辦理本小組幕僚行政工作。

(四) 一級行政單位及學院代表各一人：由各單位指派相當職級人員擔任，負責所屬單位個人資料保護工作之推動。

(五) 法律專長人員：由秘書室法律專長人員擔任。

3.The Task Force consists of the following members:

(1)Convener: To be served by the Chief Information Security Officer (Vice President) of the University

(2)Vice Convener: To be served by the director of the Computer and Network Center

(3)Executive Secretary: To be served by one person from the Computer and Network Center specializing in information security and to take care of staff personnel administration for the Task Force.

(4)One representative respectively from every Class 1 administrative unit and college: Respective units shall assign someone of a comparable job ranking to take charge of promoting personal information protection tasks at the affiliated unit.

(5)Legal expert: To be served by someone from the Secretariat specializing in legal affairs.

四、本小組視業務推動之需要不定期召開會議，由召集人主持；召集人因故不能主持會議時，由副召集人主持。

4.The Task Force may call for a meeting from time to time reflective of the needs in promoting related operations. The convener will be the chair in a meeting. If the convener is unable to preside over a meeting, the vice-convener shall serve as the chair.

本小組開會時得邀請有關單位人員或學者專家列席。

The Task Force may invite related parties or scholars/experts to be attended in its meeting.

五、本小組重要執行成效，由召集人或副召集人向本校主管會報提出報告。

5.The convener or the vice-convener is to report to the supervisors of the University on important implementation accomplishments of the Task Force.

六、本要點經行政會議通過後實施，修正時亦同。

6. The Directions are to be enforced following approval through the administrative meeting. The same shall apply to their revisions.